artulab
projects / openbsd / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 4732230) | patch
rpki-client: allow multiple EKU OIDs for BGPsec certs
authortb <tb@openbsd.org>
Mon, 10 Jun 2024 12:44:06 +0000 (12:44 +0000)
committertb <tb@openbsd.org>
Mon, 10 Jun 2024 12:44:06 +0000 (12:44 +0000)
commit204218f72a77a3e39ef2465898daeef7c5f77e39
tree0126efcbbeb512dd4c7fe1fd82200dbc4e62f557tree | snapshot
parent473223040d1e4e98ce0075400af1eb4715ff9a74commit | diff
rpki-client: allow multiple EKU OIDs for BGPsec certs

Nothing says there may be only one purpose. We only need to find
id-kp-bgpsec-router among them. This matches the intention of the
extended key usage extension in RFCs 5280 and 8209 more closely.

ok claudio
usr.sbin/rpki-client/x509.c diff | blob | history
OpenBSD src
by Ahmet Artu Yildirim